Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/kkxZ6q2ABsMXjhC9Yfj6otEpisU.roa
File: kkxZ6q2ABsMXjhC9Yfj6otEpisU.roa (raw, json)
Hash identifier: nivFX1xrk5zckYV9wlGaUrtnuHFHP1ODPhSA2Xcl3Uk=
Subject key identifier: 92:4C:59:EA:AD:80:06:C3:17:8E:10:BD:61:F8:FA:A2:D1:29:8A:C5
Certificate issuer: /CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Certificate serial: 01857070649D1F35452E197F66669B93C3B3
Authority key identifier: C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/kkxZ6q2ABsMXjhC9Yfj6otEpisU.roa
Signing time: Mon 02 Jan 2023 03:04:52 +0000
ROA not before: Mon 02 Jan 2023 03:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42014
IP address blocks: 213.174.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:64:9d:1f:35:45:2e:19:7f:66:66:9b:93:c3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Validity
Not Before: Jan 2 03:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=924c59eaad8006c3178e10bd61f8faa2d1298ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:94:d1:c4:fc:dc:af:d2:f6:57:c8:7f:f1:97:
85:bd:63:cd:cf:12:42:f0:92:e6:e6:7e:b1:71:70:
9d:dc:6f:35:d6:70:c8:6d:d2:b4:ee:bf:59:d2:af:
eb:fc:ca:31:a3:6c:e4:bb:90:80:86:c9:68:32:cc:
98:86:49:e6:e9:47:b8:62:2c:21:b9:b6:28:38:b0:
2d:62:4d:b5:3c:5d:8b:80:7c:bc:1d:8c:4a:93:e1:
3e:fb:eb:c7:9b:47:81:7d:e8:e0:49:78:cc:a9:fe:
44:4a:85:16:23:b9:31:3f:53:32:c6:9d:19:68:4a:
db:76:a4:c6:cc:23:ef:d7:cb:2f:1b:41:7b:56:f9:
a0:2c:f0:d0:c1:45:47:7c:b0:04:04:b4:b5:e7:8e:
eb:6f:90:22:3a:c2:87:b1:f8:cb:7a:2c:63:2c:ef:
10:5f:43:41:b4:81:4b:02:aa:14:5d:3c:b4:5d:1e:
6f:7f:ed:d9:9f:05:87:34:d0:10:38:64:04:c3:84:
82:12:d8:b2:d2:0e:79:5d:70:7c:69:ac:c9:80:d2:
8e:56:2c:1e:2a:e7:86:7b:ae:e2:c3:cf:c0:20:9d:
51:79:e8:a3:09:09:a9:cc:37:44:0a:6b:36:ca:f6:
ee:65:08:20:7a:58:55:8d:45:31:15:42:19:21:c2:
64:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:4C:59:EA:AD:80:06:C3:17:8E:10:BD:61:F8:FA:A2:D1:29:8A:C5
X509v3 Authority Key Identifier:
keyid:C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/kkxZ6q2ABsMXjhC9Yfj6otEpisU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.174.21.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:ff:00:2c:82:8a:b5:42:44:84:a4:7a:69:82:31:40:45:fb:
ed:35:41:31:f2:2e:71:5f:ab:e7:1d:c0:9e:5a:07:23:9b:58:
f2:8a:ad:c1:8d:8d:31:96:33:c9:22:73:f1:d8:d9:d4:30:d0:
28:b2:be:ff:4d:0d:96:24:50:7b:d0:ca:15:2c:7f:33:70:35:
00:7e:1f:9a:b2:a0:7d:73:e2:f4:ed:cc:30:0d:b3:44:4e:2d:
8a:6c:b4:e6:ca:88:8f:66:ca:64:c8:a0:c6:e7:de:9b:2c:7b:
92:ca:4c:e7:50:c0:3f:37:65:6e:f4:a0:da:30:79:88:24:30:
d6:d3:88:19:9f:80:ff:77:5e:3d:d2:8b:ea:01:79:6a:6a:04:
a2:96:42:37:4d:2b:06:80:71:a1:b7:5d:c1:6b:4f:c0:3a:86:
13:fd:a3:66:db:44:ee:8e:0b:c5:3f:7b:44:80:84:88:b0:9f:
b2:09:6c:83:b0:52:28:d7:ce:ae:81:56:a2:6d:c0:2c:8d:53:
59:b4:85:e6:81:56:6a:40:9b:e6:c0:2c:74:18:d5:31:d3:e0:
86:d8:3c:fd:44:12:8f:11:d3:a1:a0:19:06:ea:21:fc:67:d5:
24:f9:48:00:01:5d:16:cf:e9:08:10:d2:92:9e:5c:da:e2:65:
c4:ba:05:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org